About Glasswall Engine
  • PDF

About Glasswall Engine

  • PDF

The Glasswall Engine lies at the heart of our CDR Platform which provides a means to orchestrate analysis and protection workloads. Development teams and partners can deploy the core Glasswall Engine as an embedded component. This ensures the capabilities of the Glasswall Embedded Engine can be harnessed via an SDK to facilitate programmatic integration into appliances or software processes.



Use Cases

  • Embedded component within network appliances and data guards
  • Critical element of a Cross Domain Solution (CDS)
  • Software Bill of Materials (SBOM) audit and protection process
  • Zero Trust solution to assess files traversing trust boundaries

Engine Operation Modes

  • An Analysis mode whereby a detailed report highlighting content that is contained within a file is produced. The analysis mode enables the content of documents to be assessed with an XML report generated to summarise the non-conformance's and potential threats.
  • A Protect mode whereby the file is processed and a safe, substitute, copy is made. The Protect mode addresses the issues that are identified, returning an updated document with the remedies and sanitisation changes necessary to remove threats incorporated in the original document.
  • An Export mode whereby internal components of a file are externalised and represented in an intermediate format such as XML for further processing and manipulation of a file. The export mode provides the ability to export a document object model (DOM), which includes all content within a file, for the supported file formats.
  • An Import mode that consumes the intermediate files (exported by the engine) with or without modifications, validates and regenerates the file back to its original format. Import mode provides the ability to re-import a document object model (DOM), with any external modification made to the exported content, provided that modifications comply with the file format specification.

The Glasswall Embedded Engine contains an Application Programming Interface (API) within a Dynamic Link Library (DLL) on Windows platforms and a Shared Object (SO) on Linux platforms.

Broadly, the API provides the following functionality:

  • The validation, cleansing (sanitisation and remediation) and reconstruction of files.
  • The production of XML reports detailing deep analysis of files.
  • The management of files against a configurable content management policy.
  • Reliable file type identification.
  • The ability to perform search and redaction of text in MS Office file types.
  • The creation and manipulation of a document object model (DOM) for supported file types.